Nighthawk's check point / firewall command scratch pad

Jump to: navigation, search
Check Point Profressional Services


model number

equivalent of linux ip route get

iclid >sh route dest

get IP appliance model number (ipso 6.x and above)

clish -c "show asset hardware" | grep Platform | awk '{print $2}'

mds crap

run on p-1 after upgrade w/name change

mdsquerydb NetworkObjects |grep firewall-name

search CLMs for last gzipped log

for CLM in *; do ls -lt $CLM/CPsuite-R75.20/fw1/log/*.log.gz | grep -m 1 log.gz; done

misc crap

nokias in /etc/hosts on authric

cat /etc/hosts | grep -v eth | awk '{print $2}' | grep '^k...' |more

ping test 0 / 1 after waiting 2 seconds

ping -q -c 1 -W 2 host | grep received | awk -F "," '{print $2}' | awk '{print $1}'

get count of sync packets sent on a remote firewall via ssh

ssh -q -l admin firewallhostname "fw ctl pstat | grep -A 1 \"Sync packets sent\" | grep total" | awk '{print $3}' | awk -F , '{print $1}'